enscript: Multiple vulnerabilities
— GLSA 200502-03

enscript suffers from vulnerabilities and design flaws, potentially
resulting in the execution of arbitrary code.

Affected Packages

Package

app-text/enscript on all architectures

Affected versions

< 1.6.3-r3

Unaffected versions

>= 1.6.3-r3

Background

enscript is a powerful ASCII to PostScript file converter.

Description

Erik Sjolund discovered several issues in enscript: it suffers
from several buffer overflows (CAN-2004-1186), quotes and shell escape
characters are insufficiently sanitized in filenames (CAN-2004-1185),
and it supported taking input from an arbitrary command pipe, with
unwanted side effects (CAN-2004-1184).

Impact

An attacker could design malicious files or input data which, once
feeded into enscript, would trigger the execution of arbitrary code
with the rights of the user running enscript.